Menu
I currently use Ubuntu with unattended-upgrades on all my ec2-instances, to keep any nasty holes closed, but when running apps via Elastic beanstalk i can't see any option on how to handle patches to them. The only alternative is to manually log in to them and run yum.
Have anyone thought about how to handle security patches on Elastic Beanstalk-instances?
591
Release: Elastic Beanstalk Amazon Linux AMI platforms are deprecated on July 8, 2021. This release announces the deprecation of AWS Elastic Beanstalk platforms based on Amazon Linux AMI (aka AL1). Final retirement date is set to June 30, 2022.
Encryption & Dedicated InfrastructureCustomer data for all accounts are accessed via secure protocols such as HTTPS and SSH. Additionally, all passwords are encrypted on our servers and databases. We run a dedicated environment behind firewalls with constant internal and external monitoring.
Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications.
We added the following to our .ebextensions/01run.config file to address this issue:
commands:
security_updates:
command: "yum update -y --security"
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
